IMAPd scans

Steve Herman (herman@HANS.ORG)
Wed, 06 Aug 1997 00:00:50 -0700

The scan was performed from evcap.ucsb.edu, targetting all hosts in the 128.x.x.x a-net. Approximately a couple of hundreds of
thousands host was scanned. About 12-15'000 was running an imapd service, can't remember exactly since I forgot to bring home
the raw output from the scan(only a processed one which would be easier to go through by hand). This scan was done in a little
more than 1 day, ie scanning about 10 hosts/second. I knew this scan wouldn't go unnoticed, so I didn't count on keeping the
system I made the scan from. But, this shows how easy it is to find a system vulnerable for a certain bug, all over the net.
New bugs in microsoft wheelchair^H^H^H^H^H^H^H^H^H^Hwindows are something which also can be exploited in a mass scale, with
a more powerful effect since all their systems run the same services. You can send OOB-packets for example, bringing down many
thousands of computers in a matter of minutes.

I guess the point of all of this is, you can't be safe on the net. Almost no one gives a though to where the world is going.
People learning security/programming etc at home, don't get a decent job even though they could do the job, because they lack
a college diploma. But they can in the future destroy the world. Oh well.. That's about it. This was written from someone elses
account, don't mail back here.

/DH